ClickFix Meets AI: A Multi-Platform Attack Targeting macOS in the Wild

### Executive summary ANY.RUN observed a live macOS ClickFix campaign abusing trust in AI development platforms and search ads to trick users into running terminal commands that deploy the AMOS stealer/backdoor; the malware escalates to root, exfiltrates Keychain data, browser cookies, and crypto wallets, and installs a persistent WebSocket reverse shell, illustrating a high-risk shift in macOS-targeted enterprise attacks and the need for interactive sandbox analysis to detect user-driven execution paths.